Overview
Montgomery County Community College invites applications for the Senior Director of IT Security position. The Senior Director of IT Security serves as the College’s Information Security Officer (ISO) and is the College’s lead for cybersecurity strategy, governance, and risk management. This is a role for someone who likes complexity, who can see the big picture, and who is willing to dive into the details when the moment calls for it. The Senior Director sets the direction for a secure and resilient technology environment, leads the development and execution of the College’s IT Security Program, and works closely with senior leaders to align security priorities with academic and administrative needs. The Senior Director reports to the Chief Information Officer and plays a central role in strengthening the College’s overall security posture and shaping a campus culture that values awareness, responsibility and shared stewardship. The position is based at Montgomery County Community College, with campuses in Blue Bell and Pottstown and online offerings. Since 1964, MCCC has transformed lives and communities by meeting evolving educational, workforce and cultural needs. For more information, visit mc3.edu. Apply online: For the complete job description and to apply for this position, please visit https://www.mc3.edu/employment-opportunities. This position will close on March 01, 2026. Responsibilities
Provide strategic leadership for the College’s IT security program, including governance, risk management, and compliance with applicable laws and regulations. Build, lead, and evolve the College’s security strategy to align with the institution’s mission and operational realities. Lead a security team (currently two full-time staff), providing mentorship, structure, and day-to-day guidance while balancing strategic planning with hands-on technical work. Advise institutional leadership on emerging threats, recommend appropriate responses, and drive projects and initiatives that reduce risk to the College. Translate security needs into clear, actionable decisions for the institution and communicate risk impacts to both technical and non-technical audiences. Collaborate with senior leaders to integrate security priorities with academic and administrative needs and to shape a campus culture of security awareness and shared stewardship. Qualifications
Education/Training/Work Experience:
Bachelor’s degree in information technology or related field required. Master’s Degree preferred. 8 years of progressive information technology and/or cybersecurity experience with at least 5 years of supervisory experience. Experience building, leading, or maturing an institutional security program is preferred. CISSP, CRISC, CISM, CISA or equivalent senior level cybersecurity certification is preferred. Hands-on experience in security infrastructure systems. Experience managing partnerships with 3rd party vendors. Ability to communicate security priorities and risk impacts to technical and non-technical audiences. Experience in mentoring and developing staff members. Strong understanding of NIST CSF, risk management practices, and regulatory frameworks relevant to higher education (e.g., FERPA, HIPAA, GLBA, and PCI-DSS).
Specialized Knowledge & Skills:
Advanced understanding of technical and business process controls that ensure the confidentiality, integrity and availability of technology and data. Execution of risk assessments, security audits, business continuity, vulnerability, and penetration testing. Ability to work autonomously and make quick and effective decisions. Implementation of IT security best practices. Strong interpersonal skills and the ability to effectively communicate with a wide range of individuals and constituencies in a diverse community. Maintains availability during off hours, as needed, to provide leadership and decision-making during cybersecurity incidents or other critical events.
#J-18808-Ljbffr
Montgomery County Community College invites applications for the Senior Director of IT Security position. The Senior Director of IT Security serves as the College’s Information Security Officer (ISO) and is the College’s lead for cybersecurity strategy, governance, and risk management. This is a role for someone who likes complexity, who can see the big picture, and who is willing to dive into the details when the moment calls for it. The Senior Director sets the direction for a secure and resilient technology environment, leads the development and execution of the College’s IT Security Program, and works closely with senior leaders to align security priorities with academic and administrative needs. The Senior Director reports to the Chief Information Officer and plays a central role in strengthening the College’s overall security posture and shaping a campus culture that values awareness, responsibility and shared stewardship. The position is based at Montgomery County Community College, with campuses in Blue Bell and Pottstown and online offerings. Since 1964, MCCC has transformed lives and communities by meeting evolving educational, workforce and cultural needs. For more information, visit mc3.edu. Apply online: For the complete job description and to apply for this position, please visit https://www.mc3.edu/employment-opportunities. This position will close on March 01, 2026. Responsibilities
Provide strategic leadership for the College’s IT security program, including governance, risk management, and compliance with applicable laws and regulations. Build, lead, and evolve the College’s security strategy to align with the institution’s mission and operational realities. Lead a security team (currently two full-time staff), providing mentorship, structure, and day-to-day guidance while balancing strategic planning with hands-on technical work. Advise institutional leadership on emerging threats, recommend appropriate responses, and drive projects and initiatives that reduce risk to the College. Translate security needs into clear, actionable decisions for the institution and communicate risk impacts to both technical and non-technical audiences. Collaborate with senior leaders to integrate security priorities with academic and administrative needs and to shape a campus culture of security awareness and shared stewardship. Qualifications
Education/Training/Work Experience:
Bachelor’s degree in information technology or related field required. Master’s Degree preferred. 8 years of progressive information technology and/or cybersecurity experience with at least 5 years of supervisory experience. Experience building, leading, or maturing an institutional security program is preferred. CISSP, CRISC, CISM, CISA or equivalent senior level cybersecurity certification is preferred. Hands-on experience in security infrastructure systems. Experience managing partnerships with 3rd party vendors. Ability to communicate security priorities and risk impacts to technical and non-technical audiences. Experience in mentoring and developing staff members. Strong understanding of NIST CSF, risk management practices, and regulatory frameworks relevant to higher education (e.g., FERPA, HIPAA, GLBA, and PCI-DSS).
Specialized Knowledge & Skills:
Advanced understanding of technical and business process controls that ensure the confidentiality, integrity and availability of technology and data. Execution of risk assessments, security audits, business continuity, vulnerability, and penetration testing. Ability to work autonomously and make quick and effective decisions. Implementation of IT security best practices. Strong interpersonal skills and the ability to effectively communicate with a wide range of individuals and constituencies in a diverse community. Maintains availability during off hours, as needed, to provide leadership and decision-making during cybersecurity incidents or other critical events.
#J-18808-Ljbffr